BrowserBackdoorServer is a WebSocket server that listens for incoming WebSocket connections and creates a command-line interface for sending commands to the remote system.
First clone BrowserBackdoorServer repository from github, to do so type:
Follow the below steps one by one:
Now go to the client folder and open index.html file in leafpad and edit the following line now type your kali Linux ip screenshot is given below.
After finishing the above task it will create the Browser backdoor script folder for windows and Linux users
Now type the following command step by step
npm install electron-packager -g
electron-packager . –all
Now go to the server folder in browser-backdoor directory and the following command
After that start browser backdoor by typing in terminal:
Now send the Brwoserbackdoor-win32-x64 to the victim using any social engineering method when the victim clink on BrowserBackdoor file you can get the victim session example are given below.
Now type the session command to check the active session it will show you the session with id no.
Type the target command with session id to interact with current session sees the following example
Now if you want to more option type the help command you can get the list of all available command
NOTE: This post is only to make people aware of this backdoor i.e. Educational purpose only.